Replies: 1 comment 2 replies
-
The best practice here would be to use the secret vault and/or global validation settings. https://www.win-acme.com/manual/advanced-use/secret-management |
Beta Was this translation helpful? Give feedback.
2 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
In Azure, after a set period the Application Principle's secrets expire, this requires you to generate a new secret and update winacme.
I am struggling to update the secret on winacme, it seems to update the secret encryption string but still fails when authenticating to DNS to write the challenge.
I completely re-setup winacme with the same new secret and it is all working again.. however I would like too know how to simply update the secret rather than needed to do a full (m) re-create of the certificate every time the secret expires.
I did try running "wacs.exe --validation azure --azuretenantid xxxxxxxxxxxx --azureclientid xxxxxxxxxxx --azuresecret xxxxxxxxxxx --azuresubscriptionid xxxxxxxxxx --azureresourcegroupname xxxxxxxx --verbose"
but that did not work.. although it did update the encrypted secret section of the.json.. it still failed to auth when issuing the DNS challenge.
Beta Was this translation helpful? Give feedback.
All reactions